Login Rules 참조 문서

이 페이지는 Login Rules를 구동하는 표현 언어에 대한 세부 정보를 제공합니다. 클러스터에 첫 번째 Login Rule을 추가하는 방법을 알아보려면 Login Rules 가이드 를 참조하십시오. YAML 명세 # kind: login_rule version: v1 metadata: # name is a unique name for the Login Rule in the cluster. name: example # expires is optional and usually should not be set for deployed login # rules, but it can be useful to set an expiry a short time in the future # while testing new Login Rules to prevent potentially locking yourself out of # your teleport cluster. # expires: "2023-01-31T00:00:00-00:00" spec: # priority can be used to order the evaluation of multiple Login Rules within # a cluster. # # Login Rules with lower numbered priorities will be applied first, followed # by rules with priorities in increasing order. In case of a tie, Login Rules # with the same priority will be ordered by a lexicographical sort of their # names. # # The default value is 0, the supported range is -2147483648 to 2147483647 # (inclusive). priority: 0 # If set, traits_map will determine the traits of all users who log in to the # cluster. # # This is a YAML map where the key must be a static string which will be the # final trait key, and the value is a list of predicate expressions which each # must evaluate to a set of strings. The final trait will be set to the union # of the resulting string sets of all predicate expressions for that trait # key. # # traits_map must contain the complete set of desired traits. Any external # traits not found here will not be included in th